This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/c2gSKWlRkLuYaiU0Oeg8g9dZ05I.roa File: c2gSKWlRkLuYaiU0Oeg8g9dZ05I.roa (raw, json) Hash identifier: 7uAM7VX7Ej0SBWMmH0CE29ym8zCyH/in+u/ATo6WF2Q= Subject key identifier: 73:68:12:29:69:51:90:BB:98:6A:25:34:39:E8:3C:83:D7:59:D3:92 Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a Certificate serial: 019B3D1C181AF2386A8AA18AA71ACBD57329 Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/c2gSKWlRkLuYaiU0Oeg8g9dZ05I.roa Signing time: Sat 20 Dec 2025 18:53:29 +0000 ROA not before: Sat 20 Dec 2025 18:53:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 51722 IP address blocks: 2a0b:7780::/29 maxlen: 29 2a0b:da00::/29 maxlen: 29 2a0c:77c0::/29 maxlen: 29 2a0c:aa40::/29 maxlen: 29 2a0d:2dc0::/29 maxlen: 29 2a0d:3880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:1c:18:1a:f2:38:6a:8a:a1:8a:a7:1a:cb:d5:73:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a Validity Not Before: Dec 20 18:53:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=73681229695190bb986a253439e83c83d759d392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e2:20:42:be:a2:15:99:84:a4:52:08:c8:d4: 76:c1:75:ab:a1:bd:39:59:c9:cc:67:4e:b3:1e:fc: 20:62:09:33:9a:9e:71:68:18:d4:d5:05:11:e1:e6: 61:b5:29:54:44:f9:d3:7f:1a:ff:57:d0:ef:ae:e2: 99:83:5a:fe:77:e5:62:bc:81:3a:09:61:b5:04:76: c5:70:f9:e4:78:7c:3c:75:db:c3:78:48:ec:cc:59: 50:b0:01:0c:d5:88:42:5b:13:07:f7:2b:65:78:6a: bd:cb:78:ce:0d:03:df:e5:d2:8d:71:57:3d:f2:22: 8e:f5:f2:25:61:15:c7:5d:69:46:ac:62:75:f3:62: 00:87:1a:80:87:3f:8d:a8:b2:6c:6d:99:ee:f6:a7: 53:57:e2:f8:e2:5d:45:a9:b6:33:4d:da:82:03:42: 3d:04:fd:96:51:bc:0e:2f:65:cd:f9:7e:d6:43:18: 4f:be:7e:04:61:b4:0f:da:c2:16:7e:72:91:9b:de: 60:a7:0f:4e:e6:63:84:99:d0:68:02:65:35:07:39: 81:bc:e2:e3:5e:4d:21:09:2c:09:5d:f7:07:74:64: f2:a4:1d:61:28:63:41:f6:1b:4f:09:90:22:78:c0: 57:e0:30:15:df:09:53:c4:ac:55:70:d3:f5:dd:2f: 20:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:68:12:29:69:51:90:BB:98:6A:25:34:39:E8:3C:83:D7:59:D3:92 X509v3 Authority Key Identifier: keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/c2gSKWlRkLuYaiU0Oeg8g9dZ05I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:7780::/29 2a0b:da00::/29 2a0c:77c0::/29 2a0c:aa40::/29 2a0d:2dc0::/29 2a0d:3880::/29 Signature Algorithm: sha256WithRSAEncryption a1:b3:c0:85:5b:82:9b:11:71:ba:9f:55:0a:08:21:c2:12:51: ce:ce:c7:d2:2f:69:07:94:fd:47:c4:e4:dc:19:ad:e1:68:59: 37:1f:8b:3b:4f:12:02:41:50:49:57:a6:67:4c:f4:78:c7:48: 13:93:53:48:bc:29:1a:e3:a3:97:28:54:bd:39:78:a9:c6:5d: 0f:cd:73:76:87:01:a5:af:e2:ef:25:f2:0f:43:65:67:84:2a: 5d:92:4b:53:89:0a:9d:cd:25:ab:9a:b2:f0:6d:cb:ff:c3:2b: 4d:01:2b:96:53:5b:2e:e5:9d:2a:6a:61:24:81:b6:58:0b:fe: 9d:19:59:63:44:70:48:bb:68:af:a2:73:7d:df:7a:f8:6a:64: 62:9c:bd:8f:c1:ce:73:52:6d:b1:f7:d5:c5:67:ad:02:65:a4: 1e:e5:48:2c:5d:8c:d2:87:58:ee:e9:16:74:52:06:f3:8d:e5: 54:e1:c2:3f:a0:b3:bb:51:7c:ae:75:98:75:06:1c:a1:2e:67: 2c:05:d4:4f:ff:a7:05:e4:e6:da:40:c5:ad:b8:9d:95:28:64: a6:62:70:9f:35:5e:da:2b:4b:9a:dc:75:a2:a3:c1:74:e1:c5: c6:c3:5f:c6:12:f7:78:bf:e1:c0:9c:71:9a:ae:17:f2:7d:3a: 71:18:0c:2b -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZs9HBga8jhqiqGKpxrL1XMpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4NzA5MGMyNzVjMzRjMDVjMzA2ZjNiMzYwNjM4OTNhMGQ3 Mjc4MmEwHhcNMjUxMjIwMTg1MzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzY4MTIyOTY5NTE5MGJiOTg2YTI1MzQzOWU4M2M4M2Q3NTlkMzkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+IgQr6iFZmEpFIIyNR2wXWrob05 WcnMZ06zHvwgYgkzmp5xaBjU1QUR4eZhtSlURPnTfxr/V9DvruKZg1r+d+VivIE6 CWG1BHbFcPnkeHw8ddvDeEjszFlQsAEM1YhCWxMH9ytleGq9y3jODQPf5dKNcVc9 8iKO9fIlYRXHXWlGrGJ182IAhxqAhz+NqLJsbZnu9qdTV+L44l1FqbYzTdqCA0I9 BP2WUbwOL2XN+X7WQxhPvn4EYbQP2sIWfnKRm95gpw9O5mOEmdBoAmU1BzmBvOLj Xk0hCSwJXfcHdGTypB1hKGNB9htPCZAieMBX4DAV3wlTxKxVcNP13S8gxQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFHNoEilpUZC7mGolNDnoPIPXWdOSMB8GA1UdIwQY MBaAFKhwkMJ1w0wFwwbzs2BjiToNcngqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEt YjU3YTM2ZjJhZmNkLzEvYzJnU0tXbFJrTHVZYWlVME9lZzhnOWRaMDVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83YjIxMjktY2M2Yy00NzEwLWJhNDEtYjU3YTM2ZjJhZmNk LzEvcUhDUXduWERUQVhEQnZPellHT0pPZzF5ZUNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUDKgt3gAMF AyoL2gADBQMqDHfAAwUDKgyqQAMFAyoNLcADBQMqDTiAMA0GCSqGSIb3DQEBCwUA A4IBAQChs8CFW4KbEXG6n1UKCCHCElHOzsfSL2kHlP1HxOTcGa3haFk3H4s7TxIC QVBJV6ZnTPR4x0gTk1NIvCka46OXKFS9OXipxl0PzXN2hwGlr+LvJfIPQ2VnhCpd kktTiQqdzSWrmrLwbcv/wytNASuWU1su5Z0qamEkgbZYC/6dGVljRHBIu2ivonN9 33r4amRinL2Pwc5zUm2x99XFZ60CZaQe5UgsXYzSh1ju6RZ0UgbzjeVU4cI/oLO7 UXyudZh1BhyhLmcsBdRP/6cF5ObaQMWtuJ2VKGSmYnCfNV7aK0ua3HWio8F04cXG w1/GEvd4v+HAnHGarhfyfTpxGAwr -----END CERTIFICATE-----Generated at Sun Dec 21 03:21:52 2025 by rpki-client